Configure the BlackBerry MDS Connection Service to use DSML to retrieve certificates

In the BlackBerry Administration Service, on the Servers and components menu, expand BlackBerry Solution topology > BlackBerry Domain > Component view.
Click MDS Connection Service.
On the DSML tab, click Edit component.
In the Protocol service information section, in the Query limit field, type the maximum number of certificates that the BlackBerry MDS Connection Service can retrieve during each search it performs.

Perform one of the following tasks:

Task	Steps
Create a configuration for a DSML certificate server.	In the Name field, type a name for the DSML certificate server that you want the BlackBerry MDS Connection Service to search. In the Service URL field, type the FQDN of the DSML certificate server (for example, http://server01.rim.com:1234/dsml/adssoap.dsmlx). In the Settings section, if you do not want the BlackBerry MDS Connection Service to search the entire directory tree, in the Base query field, type the search base that the BlackBerry MDS Connection Service can use. To permit the BlackBerry MDS Connection Service to authenticate with the DSML certificate server on behalf of BlackBerry devices, in the User name field, type the user name that the BlackBerry MDS Connection Service can use to authenticate with the DSML certificate server. In the Password and Confirm password fields, type the password for the user name that the BlackBerry MDS Connection Service can use to authenticate with the DSML certificate server. Click the Add icon.
Change a configuration for an existing DSML certificate server configuration.	Click the Edit icon that is beside the DSML certificate server that you want to change. In the Settings section, change the DSML certificate server settings. Click the Update icon.

Task

Steps

Create a configuration for a DSML certificate server.

In the Name field, type a name for the DSML certificate server that you want the BlackBerry MDS Connection Service to search.
In the Service URL field, type the FQDN of the DSML certificate server (for example, http://server01.rim.com:1234/dsml/adssoap.dsmlx).
In the Settings section, if you do not want the BlackBerry MDS Connection Service to search the entire directory tree, in the Base query field, type the search base that the BlackBerry MDS Connection Service can use.
To permit the BlackBerry MDS Connection Service to authenticate with the DSML certificate server on behalf of BlackBerry devices, in the User name field, type the user name that the BlackBerry MDS Connection Service can use to authenticate with the DSML certificate server.
In the Password and Confirm password fields, type the password for the user name that the BlackBerry MDS Connection Service can use to authenticate with the DSML certificate server.
Click the Add icon.

Change a configuration for an existing DSML certificate server configuration.

Click the Edit icon that is beside the DSML certificate server that you want to change.
In the Settings section, change the DSML certificate server settings.
Click the Update icon.

After you finish:

To configure the BlackBerry MDS Connection Service to retrieve the status of certificates from an OCSP server or CRL server, you must configure the OCSP server and CRL server information.
Add the communication information that you configured for the DSML server to the BlackBerry MDS Connection Service configuration set.

Related concepts

Restarting BlackBerry Enterprise Server components